Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/D4E1388A2F8A11EEA59DA358C4F9AE02.roa
File: D4E1388A2F8A11EEA59DA358C4F9AE02.roa (raw, json)
Hash identifier: hC/Sch01UuvsmH5sDLYIS89I4363wJOtYUo/6M9dbDo=
Subject key identifier: 28:7C:BC:1C:A2:F6:21:14:7C:EF:AB:D3:53:3F:C1:9E:21:35:84:A5
Certificate issuer: /CN=A9162EE1/serialNumber=6076BD0BA4DB797A72A68FEFF9BFB558C44398B2
Certificate serial: 0372
Authority key identifier: 60:76:BD:0B:A4:DB:79:7A:72:A6:8F:EF:F9:BF:B5:58:C4:43:98:B2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHa9C6TbeXpypo_v-b-1WMRDmLI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/D4E1388A2F8A11EEA59DA358C4F9AE02.roa
Signing time: Thu 19 Sep 2024 07:09:10 +0000
ROA not before: Thu 19 Sep 2024 07:09:10 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 147049
IP address blocks: 103.173.150.0/23 maxlen: 23
103.173.150.0/24 maxlen: 24
103.173.151.0/24 maxlen: 24
116.204.192.0/24 maxlen: 24
116.204.193.0/24 maxlen: 24
116.204.194.0/24 maxlen: 24
116.204.195.0/24 maxlen: 24
2407:e8c0::/48 maxlen: 48
2407:e8c0:1::/48 maxlen: 48
2407:e8c0:2::/48 maxlen: 48
2407:e8c0:3::/48 maxlen: 48
2407:e8c0:4::/48 maxlen: 48
2407:e8c0:5::/48 maxlen: 48
2407:e8c0:6::/48 maxlen: 48
2407:e8c0:7::/48 maxlen: 48
2407:e8c0:8::/48 maxlen: 48
2407:e8c0:9::/48 maxlen: 48
2407:e8c0:a::/48 maxlen: 48
2407:e8c0:b::/48 maxlen: 48
2407:e8c0:c::/48 maxlen: 48
2407:e8c0:d::/48 maxlen: 48
2407:e8c0:e::/48 maxlen: 48
2407:e8c0:f::/48 maxlen: 48
2407:e8c0:11::/48 maxlen: 48
2407:e8c0:4a00::/40 maxlen: 40
2407:e8c0:4b00::/40 maxlen: 40
2407:e8c0:4c00::/40 maxlen: 40
2407:e8c0:4d00::/40 maxlen: 40
2407:e8c0:4e00::/40 maxlen: 40
2407:e8c0:4f00::/40 maxlen: 40
2407:e8c0:5000::/40 maxlen: 40
2407:e8c0:5100::/40 maxlen: 40
2407:e8c0:5200::/40 maxlen: 40
2407:e8c0:5300::/40 maxlen: 40
2407:e8c0:5400::/40 maxlen: 40
2407:e8c0:5500::/40 maxlen: 40
2407:e8c0:5600::/40 maxlen: 40
2407:e8c0:5700::/40 maxlen: 40
2407:e8c0:5800::/40 maxlen: 40
Validation: Failed, certificate revoked on Thu 19 Sep 2024 09:49:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 882 (0x372)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162EE1/serialNumber=6076BD0BA4DB797A72A68FEFF9BFB558C44398B2
Validity
Not Before: Sep 19 07:09:10 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=66ebce16-d5d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:38:6f:0f:8b:63:0f:df:cb:fb:de:04:24:58:
08:7e:63:72:8d:05:ad:51:11:1f:b2:07:19:8e:c4:
85:ea:d1:a2:c7:db:b2:fd:09:cf:8a:75:47:0b:a7:
c1:7a:06:e6:f2:0f:a1:d7:e6:17:fa:2e:23:f8:db:
06:79:99:1a:98:d0:bf:65:91:94:5a:17:c2:82:14:
71:a5:60:dd:1b:fc:a2:7d:13:d6:9a:2c:3c:66:54:
93:71:98:8c:ff:0c:5d:fa:ff:b4:9b:f6:c6:5a:f5:
13:45:3f:29:5f:50:f8:66:2a:71:4d:75:bc:05:aa:
af:5f:a8:bb:18:6c:f4:a2:fa:1a:33:87:aa:54:bb:
e5:a2:12:b9:1f:f5:84:02:15:0e:7c:f5:b7:50:20:
51:4d:3b:7c:a0:96:58:57:01:de:e4:cf:e0:fc:cb:
5b:55:23:56:85:56:0d:c3:f1:4e:2f:50:ff:30:eb:
fb:6c:76:e3:4b:9f:b5:b0:87:b7:75:d4:05:5d:95:
f1:8a:91:f2:1e:87:a9:e5:55:d4:2a:e2:dc:8f:97:
f8:84:01:f1:b1:b4:36:11:49:3c:dc:4b:8c:24:b6:
aa:73:e0:54:dd:47:ba:67:0e:73:ff:0e:55:3e:e6:
26:e7:1e:ef:26:b6:9f:1e:e7:ae:34:06:48:e0:d7:
ec:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:7C:BC:1C:A2:F6:21:14:7C:EF:AB:D3:53:3F:C1:9E:21:35:84:A5
X509v3 Authority Key Identifier:
keyid:60:76:BD:0B:A4:DB:79:7A:72:A6:8F:EF:F9:BF:B5:58:C4:43:98:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/YHa9C6TbeXpypo_v-b-1WMRDmLI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHa9C6TbeXpypo_v-b-1WMRDmLI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/D4E1388A2F8A11EEA59DA358C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.173.150.0/23
116.204.192.0/22
IPv6:
2407:e8c0::/44
2407:e8c0:11::/48
2407:e8c0:4a00::-2407:e8c0:58ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
a0:42:21:e5:9f:3a:79:a0:13:ae:6e:6a:79:16:05:14:b5:61:
97:6f:46:44:d9:a8:d5:ae:d6:76:1f:fc:1b:04:58:94:ac:bc:
43:e5:9e:8d:0e:63:e3:90:bd:0a:c2:1a:9a:b6:15:e0:48:ae:
35:0b:53:89:16:1b:0d:60:78:92:37:67:fa:5f:46:53:25:54:
6d:80:54:6d:2c:fb:8c:4d:59:a5:0e:16:8a:42:c3:ab:e3:a8:
07:a4:d8:8c:44:2c:86:18:04:9e:af:90:36:87:43:02:fa:81:
3e:04:ba:31:62:c1:fa:a7:bd:83:27:50:a0:ae:0d:af:9c:4c:
ee:9a:82:46:a9:8f:51:f9:07:d3:63:7c:a7:78:61:59:55:17:
3e:a4:52:aa:7a:1d:28:ea:43:e1:06:8d:5b:84:90:cd:d9:17:
bc:6b:07:b1:b1:12:ef:4e:50:a3:1e:76:49:6b:4c:a0:33:fd:
17:f5:3c:ce:c0:15:ab:50:cb:28:63:9b:b1:02:4a:49:2e:73:
14:5e:ba:65:74:47:93:dd:8b:a2:09:09:03:7c:3a:af:d6:20:
4e:79:d9:c0:c4:fc:47:d4:2e:92:8f:e0:64:e9:11:7b:67:8e:
0f:5e:c4:6c:db:dd:13:75:66:e0:a1:74:02:3a:f0:0f:cc:70:
b0:2a:6d:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 13:12:31 2024 by rpki-client on console-ams.rpki-client.org